Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/b3125a-4c1b-4059-a03d-25ed18a71605/1/Ko5dvOrqnhlCO3PZlp9ej3DK_vA.roa
File: Ko5dvOrqnhlCO3PZlp9ej3DK_vA.roa (raw, json)
Hash identifier: UHCTH2VkUfU9U3GwhJmkVqu/OL5io5DX/oYeiCFlj0o=
Subject key identifier: 2A:8E:5D:BC:EA:EA:9E:19:42:3B:73:D9:96:9F:5E:8F:70:CA:FE:F0
Certificate issuer: /CN=95241ed0b49b2d07e3e894b61a90b0ace5e90b9f
Certificate serial: 018268EAEE4A461B103D28C25BAC3455B1AF
Authority key identifier: 95:24:1E:D0:B4:9B:2D:07:E3:E8:94:B6:1A:90:B0:AC:E5:E9:0B:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSQe0LSbLQfj6JS2GpCwrOXpC58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/b3125a-4c1b-4059-a03d-25ed18a71605/1/Ko5dvOrqnhlCO3PZlp9ej3DK_vA.roa
Signing time: Thu 04 Aug 2022 12:53:23 +0000
ROA not before: Thu 04 Aug 2022 12:53:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44001
IP address blocks: 91.229.36.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:68:ea:ee:4a:46:1b:10:3d:28:c2:5b:ac:34:55:b1:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95241ed0b49b2d07e3e894b61a90b0ace5e90b9f
Validity
Not Before: Aug 4 12:53:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a8e5dbceaea9e19423b73d9969f5e8f70cafef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b5:87:ab:76:cf:b5:84:16:25:40:62:bf:c1:
03:f1:d0:12:de:3c:13:ea:70:df:bd:15:56:1e:57:
d1:33:8b:1d:0f:c6:5a:c6:f6:7b:c4:b4:be:f5:fb:
e4:98:3a:3a:65:c8:6e:d0:49:1f:44:e7:9c:21:0d:
6f:98:cb:89:25:56:26:48:a6:f6:33:1f:a5:8f:59:
ab:de:a5:87:b2:ad:ad:d0:5c:48:39:20:92:72:92:
e7:33:2a:70:2c:ff:ca:d4:b4:cc:fb:7a:24:f5:84:
76:6b:ad:be:f0:1a:24:8c:51:ae:6c:5a:dc:73:02:
e7:da:58:48:8e:ed:05:85:94:de:87:b6:88:f7:10:
65:c5:e9:50:c4:dd:37:7b:86:f4:93:7b:70:55:09:
ab:f4:9d:00:fb:db:ba:24:6c:ad:9d:99:0a:14:3a:
c9:8e:a1:66:44:3f:d8:98:73:eb:6c:bc:24:a0:85:
b9:e9:b6:17:fe:27:ae:1f:01:59:34:a3:66:d6:91:
d8:f5:cc:2b:42:2b:2a:21:b6:85:35:e9:92:21:2c:
22:38:b5:36:0d:e3:4a:c8:6b:39:5a:fb:0f:cf:f2:
f7:3f:2a:4e:87:f0:43:02:ee:a7:6d:c4:28:48:04:
16:81:9d:60:40:6f:11:df:a9:4d:9f:a0:72:6e:83:
eb:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:8E:5D:BC:EA:EA:9E:19:42:3B:73:D9:96:9F:5E:8F:70:CA:FE:F0
X509v3 Authority Key Identifier:
keyid:95:24:1E:D0:B4:9B:2D:07:E3:E8:94:B6:1A:90:B0:AC:E5:E9:0B:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSQe0LSbLQfj6JS2GpCwrOXpC58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/b3125a-4c1b-4059-a03d-25ed18a71605/1/Ko5dvOrqnhlCO3PZlp9ej3DK_vA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/b3125a-4c1b-4059-a03d-25ed18a71605/1/lSQe0LSbLQfj6JS2GpCwrOXpC58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.36.0/23
Signature Algorithm: sha256WithRSAEncryption
51:a4:bb:c3:2e:c3:3a:40:40:9d:cd:d9:ed:5c:d5:a0:24:46:
38:59:18:9b:f6:82:de:cf:cb:fe:ec:86:fe:f3:f2:d3:00:0d:
85:cb:28:aa:86:ea:8f:88:93:7c:aa:ef:07:c3:c1:9e:ce:3c:
bf:85:f5:30:67:7b:48:14:68:6a:57:90:00:64:4e:78:cb:8f:
12:62:c0:98:90:36:cd:fe:8b:6a:ad:e3:b3:4d:dc:d6:e0:89:
fa:d1:7e:03:19:dd:cc:98:22:4a:ee:3b:ae:89:19:2a:46:5b:
ed:b2:a9:db:f0:05:a2:79:68:a1:41:0a:84:d9:5a:3f:ca:3d:
5e:cc:a4:3f:38:29:24:59:bf:f1:71:fc:8b:37:87:00:ad:82:
24:e2:f8:cf:9b:e4:6f:94:98:9a:bc:7e:0b:62:23:02:1c:00:
9a:90:ca:7a:37:57:e5:27:ee:82:fe:ed:0c:df:b8:53:fd:c3:
c2:d4:fc:15:d0:b4:2a:4c:39:69:2b:13:a8:e4:b2:15:14:19:
8a:b6:bb:fe:f6:ef:98:e6:ee:a6:24:fc:12:91:cb:a2:38:bc:
0e:57:33:d6:36:1b:b1:3e:c8:3a:29:c8:4e:1e:d1:85:b2:b2:
48:b8:7b:92:b7:44:d6:dd:78:84:30:00:95:be:db:4e:4f:db:
4c:c4:de:9a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJo6u5KRhsQPSjCW6w0VbGvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MjQxZWQwYjQ5YjJkMDdlM2U4OTRiNjFhOTBiMGFjZTVl
OTBiOWYwHhcNMjIwODA0MTI1MzIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYThlNWRiY2VhZWE5ZTE5NDIzYjczZDk5NjlmNWU4ZjcwY2FmZWYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAibWHq3bPtYQWJUBiv8ED8dAS3jwT
6nDfvRVWHlfRM4sdD8ZaxvZ7xLS+9fvkmDo6Zchu0EkfROecIQ1vmMuJJVYmSKb2
Mx+lj1mr3qWHsq2t0FxIOSCScpLnMypwLP/K1LTM+3ok9YR2a62+8BokjFGubFrc
cwLn2lhIju0FhZTeh7aI9xBlxelQxN03e4b0k3twVQmr9J0A+9u6JGytnZkKFDrJ
jqFmRD/YmHPrbLwkoIW56bYX/ieuHwFZNKNm1pHY9cwrQisqIbaFNemSISwiOLU2
DeNKyGs5WvsPz/L3PypOh/BDAu6nbcQoSAQWgZ1gQG8R36lNn6ByboPrTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCqOXbzq6p4ZQjtz2ZafXo9wyv7wMB8GA1UdIwQY
MBaAFJUkHtC0my0H4+iUthqQsKzl6QufMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFNRZTBMU2JMUWZqNkpTMkdwQ3dyT1hwQzU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9iMzEyNWEtNGMxYi00MDU5LWEwM2Qt
MjVlZDE4YTcxNjA1LzEvS281ZHZPcnFuaGxDTzNQWmxwOWVqM0RLX3ZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9iMzEyNWEtNGMxYi00MDU5LWEwM2QtMjVlZDE4YTcxNjA1
LzEvbFNRZTBMU2JMUWZqNkpTMkdwQ3dyT1hwQzU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW+UkMA0G
CSqGSIb3DQEBCwUAA4IBAQBRpLvDLsM6QECdzdntXNWgJEY4WRib9oLez8v+7Ib+
8/LTAA2FyyiqhuqPiJN8qu8Hw8Gezjy/hfUwZ3tIFGhqV5AAZE54y48SYsCYkDbN
/otqreOzTdzW4In60X4DGd3MmCJK7juuiRkqRlvtsqnb8AWieWihQQqE2Vo/yj1e
zKQ/OCkkWb/xcfyLN4cArYIk4vjPm+RvlJiavH4LYiMCHACakMp6N1flJ+6C/u0M
37hT/cPC1PwV0LQqTDlpKxOo5LIVFBmKtrv+9u+Y5u6mJPwSkcuiOLwOVzPWNhux
Psg6KchOHtGFsrJIuHuSt0TW3XiEMACVvttOT9tMxN6a
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:04 2024 by rpki-client on console-fra.rpki-client.org